
<!DOCTYPE HTML>
<html lang="" >
    <head>
        <meta charset="UTF-8">
        <meta content="text/html; charset=utf-8" http-equiv="Content-Type">
        <title>ACL访问控制列表 · GitBook</title>
        <meta http-equiv="X-UA-Compatible" content="IE=edge" />
        <meta name="description" content="">
        <meta name="generator" content="GitBook 3.2.3">
        
        
        
    
    <link rel="stylesheet" href="../gitbook/style.css">

    
            
                
                <link rel="stylesheet" href="../gitbook/gitbook-plugin-highlight/website.css">
                
            
                
                <link rel="stylesheet" href="../gitbook/gitbook-plugin-search/search.css">
                
            
                
                <link rel="stylesheet" href="../gitbook/gitbook-plugin-fontsettings/website.css">
                
            
        

    

    
        
    
        
    
        
    
        
    
        
    
        
    

        
    
    
    <meta name="HandheldFriendly" content="true"/>
    <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no">
    <meta name="apple-mobile-web-app-capable" content="yes">
    <meta name="apple-mobile-web-app-status-bar-style" content="black">
    <link rel="apple-touch-icon-precomposed" sizes="152x152" href="../gitbook/images/apple-touch-icon-precomposed-152.png">
    <link rel="shortcut icon" href="../gitbook/images/favicon.ico" type="image/x-icon">

    
    <link rel="next" href="dhcp.html" />
    
    
    <link rel="prev" href="../router/BGP.html" />
    

    </head>
    <body>
        
<div class="book">
    <div class="book-summary">
        
            
<div id="book-search-input" role="search">
    <input type="text" placeholder="Type to search" />
</div>

            
                <nav role="navigation">
                


<ul class="summary">
    
    

    

    
        
        
    
        <li class="chapter " data-level="1.1" data-path="../">
            
                <a href="../">
            
                    
                    Welcome
            
                </a>
            

            
        </li>
    

    
        
        <li class="header">数据通信</li>
        
        
    
        <li class="chapter " data-level="2.1" data-path="../base/basic.html">
            
                <a href="../base/basic.html">
            
                    
                    数据通信基础
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="2.2" data-path="../base/network_and_protocol.html">
            
                <a href="../base/network_and_protocol.html">
            
                    
                    各类网络协议
            
                </a>
            

            
        </li>
    

    
        
        <li class="header">VRP操作系统</li>
        
        
    
        <li class="chapter " data-level="3.1" data-path="../vrp-system/vrp_basic.html">
            
                <a href="../vrp-system/vrp_basic.html">
            
                    
                    华为VRP操作系统讲解
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="3.2" data-path="../vrp-system/aaa.html">
            
                <a href="../vrp-system/aaa.html">
            
                    
                    aaa认证系统
            
                </a>
            

            
        </li>
    

    
        
        <li class="header">交换技术</li>
        
        
    
        <li class="chapter " data-level="4.1" data-path="../switch/EthernetSwitch.html">
            
                <a href="../switch/EthernetSwitch.html">
            
                    
                    Ethernet交换
            
                </a>
            

            
        </li>
    

    
        
        <li class="header">路由技术</li>
        
        
    
        <li class="chapter " data-level="5.1" data-path="../router/iprouter.html">
            
                <a href="../router/iprouter.html">
            
                    
                    IP路由
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="5.2" data-path="../router/ospf.html">
            
                <a href="../router/ospf.html">
            
                    
                    OSPF
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="5.3" data-path="../router/lan_tec.html">
            
                <a href="../router/lan_tec.html">
            
                    
                    广域网技术
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="5.4" data-path="../router/is-is.html">
            
                <a href="../router/is-is.html">
            
                    
                    IS-IS
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="5.5" data-path="../router/BGP.html">
            
                <a href="../router/BGP.html">
            
                    
                    BGP
            
                </a>
            

            
        </li>
    

    
        
        <li class="header">服务技术</li>
        
        
    
        <li class="chapter active" data-level="6.1" data-path="ACL.html">
            
                <a href="ACL.html">
            
                    
                    ACL访问控制列表
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="6.2" data-path="dhcp.html">
            
                <a href="dhcp.html">
            
                    
                    DHCP
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="6.3" data-path="dns.html">
            
                <a href="dns.html">
            
                    
                    DNS
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="6.4" data-path="ftp.html">
            
                <a href="ftp.html">
            
                    
                    FTP
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="6.5" data-path="http.html">
            
                <a href="http.html">
            
                    
                    HTTP
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="6.6" data-path="http.html">
            
                <a href="http.html">
            
                    
                    NTP
            
                </a>
            

            
        </li>
    
        <li class="chapter " data-level="6.7" data-path="telnet.html">
            
                <a href="telnet.html">
            
                    
                    Telnet
            
                </a>
            

            
        </li>
    

    

    <li class="divider"></li>

    <li>
        <a href="https://www.gitbook.com" target="blank" class="gitbook-link">
            Published with GitBook
        </a>
    </li>
</ul>


                </nav>
            
        
    </div>

    <div class="book-body">
        
            <div class="body-inner">
                
                    

<div class="book-header" role="navigation">
    

    <!-- Title -->
    <h1>
        <i class="fa fa-circle-o-notch fa-spin"></i>
        <a href=".." >ACL访问控制列表</a>
    </h1>
</div>




                    <div class="page-wrapper" tabindex="-1" role="main">
                        <div class="page-inner">
                            
<div id="book-search-results">
    <div class="search-noresults">
    
                                <section class="normal markdown-section">
                                
                                <h1 id="acl---access-control-list-&#x8BBF;&#x95EE;&#x63A7;&#x5236;&#x5217;&#x8868;">ACL---Access Control List &#x8BBF;&#x95EE;&#x63A7;&#x5236;&#x5217;&#x8868;</h1>
<p>ACL&#x901A;&#x8FC7;&#x7CBE;&#x51C6;&#x987A;&#x5E8F;&#x5339;&#x914D;&#x62A5;&#x6587;(&#x5355;&#x6B21;&#x5339;&#x914D;&#x6210;&#x529F;&#x540E;&#x5C31;&#x4E0D;&#x518D;&#x8FDB;&#x884C;&#x5339;&#x914D;), &#x5E76;&#x5C06;&#x5176;&#x5E94;&#x7528;&#x5728;&#x7F51;&#x7EDC;&#x5165;&#x8DEF;&#x548C;&#x51FA;&#x8DEF;&#x4E0A;, &#x63A7;&#x5236;&#x7F51;&#x8DEF;&#x7684;&#x8BBF;&#x95EE;&#x884C;&#x4E3A;. &#x9632;&#x6B62;&#x7F51;&#x7EDC;&#x653B;&#x51FB;&#x548C;&#x63D0;&#x9AD8;&#x7F51;&#x7EDC;&#x5E26;&#x5BBD;&#x5229;&#x7528;&#x7387;, &#x4ECE;&#x800C;&#x5207;&#x5B9E;&#x4FDD;&#x969C;&#x7F51;&#x7EDC;&#x73AF;&#x5883;&#x7684;&#x5B89;&#x5168;&#x6027;&#x548C;&#x7F51;&#x7EDC;&#x670D;&#x52A1;&#x7684;&#x8D28;&#x91CF;&#x548C;&#x53EF;&#x9760;&#x6027;</p>
<p>&#x5E94;&#x7528;&#x8303;&#x56F4;&#x5305;&#x62EC;&#x4F46;&#x4E0D;&#x9650;&#x4E8E;</p>
<ul>
<li>&#x5339;&#x914D;IP&#x6D41;&#x91CF;</li>
<li>&#x5728;Traffic-filter&#x4E2D;&#x88AB;&#x8C03;&#x7528;</li>
<li>&#x5728;NAT&#x4E2D;&#x88AB;&#x8C03;&#x7528;</li>
<li>&#x5728;&#x8DEF;&#x7531;&#x7B56;&#x7565;&#x4E2D;&#x88AB;&#x8C03;&#x7528;</li>
<li>&#x5728;&#x9632;&#x706B;&#x5899;&#x7B56;&#x7565;&#x4E2D;&#x88AB;&#x8C03;&#x7528;</li>
<li>&#x5728;QoS&#x4E2D;&#x88AB;&#x8C03;&#x7528; </li>
</ul>
<h2 id="wildcard---&#x901A;&#x914D;&#x7B26;&#x63A9;&#x7801;">Wildcard---&#x901A;&#x914D;&#x7B26;&#x63A9;&#x7801;</h2>
<p>&#x901A;&#x914D;&#x7B26;&#x63A9;&#x7801;&#x662F;&#x5B9E;&#x9645;&#x4E0A;&#x4E0D;&#x662F;&#x63A9;&#x7801;, &#x662F;&#x901A;&#x914D;&#x7B26;, &#x662F;&#x4E3A;&#x4E86;&#x6807;&#x8BC6;&#x73AF;&#x5883;&#x4E2D;&#x7684;&#x67D0;&#x4E00;&#x79CD;IP&#x800C;&#x4EA7;&#x751F;&#x7684;, &#x5176;&#x957F;&#x5F97;&#x50CF;IP&#x5730;&#x5740;&#x7684;&#x5B50;&#x7F51;&#x63A9;&#x7801;, &#x800C;&#x6709;&#x4E9B;&#x65F6;&#x5019;&#x53C8;&#x6709;&#x76F8;&#x540C;&#x7684;&#x4F5C;&#x7528;, &#x56E0;&#x6B64;&#x88AB;&#x79F0;&#x4F5C;&#x901A;&#x914D;&#x7B26;&#x63A9;&#x7801;&#x6216;&#x53CD;&#x63A9;&#x7801;</p>
<ul>
<li><p>&#x5DE5;&#x4F5C;&#x65B9;&#x5F0F;</p>
<p>  &#x6BD4;&#x5982;&#x6211;&#x8981;&#x5339;&#x914D;192.168.0.1&#x7F51;&#x6BB5;&#x4E0B;&#x7684;&#x6240;&#x6709;IP, &#x5148;&#x8981;&#x5199;&#x51FA;&#x8BE5;&#x7F51;&#x7EDC;IP&#x7684;bin&#x5F62;&#x5F0F;</p>
<p>  1100 0000.1010 1000.0000 0000.0000 0000</p>
<p>  &#x901A;&#x914D;&#x7B26;&#x7684;&#x5DE5;&#x4F5C;&#x65B9;&#x5F0F;&#x5C31;&#x662F;&#x8FDB;&#x884C;&#x5B57;&#x7B26;&#x5339;&#x914D;, &#x901A;&#x914D;&#x7B26;&#x4E3A;<code>0</code>&#x4F4D;&#x7CBE;&#x786E;&#x5339;&#x914D;, &#x901A;&#x914D;&#x7B26;&#x4E3A;<code>1</code>&#x5219;&#x4E0D;&#x8FDB;&#x884C;&#x5339;&#x914D;</p>
<p>  &#x6240;&#x4EE5;&#x786E;&#x5B9A;&#x4E00;&#x4E2A;24&#x7F51;&#x6BB5;&#x7684;&#x901A;&#x914D;&#x7B26;&#x5C31;&#x662F;&#x5C06;&#x5176;&#x63A9;&#x7801;&#x53D6;&#x53CD;&#x4E3A;<code>0.0.0.255</code></p>
</li>
</ul>
<h2 id="&#x5217;&#x8868;&#x7C7B;&#x578B;">&#x5217;&#x8868;&#x7C7B;&#x578B;</h2>
<h3 id="&#x57FA;&#x672C;&#x5217;&#x8868;">&#x57FA;&#x672C;&#x5217;&#x8868;</h3>
<p>&#x4EC5;&#x4F7F;&#x7528;&#x62A5;&#x6587;&#x6E90;IP,&#x5206;&#x7247;&#x4FE1;&#x606F;&#x548C;&#x751F;&#x6548;&#x65F6;&#x95F4;&#x6BB5;&#x6765;&#x5B9A;&#x4E49;</p>
<p><strong>&#x7F16;&#x53F7;&#x8303;&#x56F4;&#x5728;: 2000---2999</strong></p>
<ul>
<li><p>&#x89C4;&#x5219;&#x6A21;&#x5F0F;</p>
<pre><code>  rule [rule id] {deny|permit} [source {s-ip, wildcard|any}|time-range time-name]
</code></pre></li>
</ul>
<h3 id="&#x9AD8;&#x7EA7;&#x5217;&#x8868;">&#x9AD8;&#x7EA7;&#x5217;&#x8868;</h3>
<p>&#x53EF;&#x4F7F;&#x7528;IPv4&#x62A5;&#x6587;&#x6E90;IP, &#x76EE;&#x7684;IP, &#x534F;&#x8BAE;&#x7C7B;&#x578B;, &#x7AEF;&#x53E3;&#x53F7;, &#x751F;&#x6548;&#x65F6;&#x95F4;&#x6BB5;&#x6765;&#x5339;&#x914D;</p>
<p><strong>&#x7F16;&#x53F7;&#x8303;&#x56F4;&#x5728;: 3000---3999</strong></p>
<ul>
<li>&#x89C4;&#x5219;&#x6A21;&#x5F0F;</li>
</ul>
<h3 id="&#x4E8C;&#x5C42;acl">&#x4E8C;&#x5C42;ACL</h3>
<p>&#x4F7F;&#x7528;&#x62A5;&#x6587;&#x7684;&#x4EE5;&#x592A;&#x5934;&#x90E8;&#x6765;&#x5339;&#x914D;, &#x6BD4;&#x5982;MAC&#x548C;&#x4E8C;&#x5C42;&#x534F;&#x8BAE;&#x7C7B;&#x578B;</p>
<p><strong>&#x7F16;&#x53F7;&#x8303;&#x56F4;&#x5728;: 4000-4999</strong></p>
<ul>
<li><p>&#x89C4;&#x5219;&#x6A21;&#x5F0F;</p>
<p>  &#x8FD9;&#x4E2A;&#x592A;&#x591A;......&#x6709;&#x65F6;&#x95F4;&#x518D;&#x5199;, &#x5B9E;&#x5728;&#x4E0D;&#x884C;&#x5C31;&#x53BB;console&#x4E0A; <code>?</code> &#x4E00;&#x4E0B;</p>
</li>
</ul>
<h3 id="&#x7528;&#x6237;&#x81EA;&#x5B9A;&#x4E49;acl">&#x7528;&#x6237;&#x81EA;&#x5B9A;&#x4E49;ACL</h3>
<p>&#x4F7F;&#x7528;&#x62A5;&#x6587;&#x5934;&#x90E8;, &#x504F;&#x79FB;&#x4F4D;&#x7F6E;, &#x5B57;&#x7B26;&#x4E32;&#x63A9;&#x7801;&#x548C;&#x7528;&#x6237;&#x81EA;&#x5B9A;&#x4E49;&#x5B57;&#x7B26;&#x4E32;&#x6765;&#x5B9A;&#x4E49;&#x89C4;&#x5219;</p>
<p><strong>&#x7F16;&#x53F7;&#x8303;&#x56F4;&#x5728;: 5000---5999</strong></p>
<h3 id="&#x7528;&#x6237;acl">&#x7528;&#x6237;ACL</h3>
<p>&#x4F7F;&#x7528;&#x51E0;&#x4E4E;&#x4EE5;&#x4E0A;&#x6240;&#x6709;&#x7C7B;&#x578B;&#x7684;&#x65B9;&#x5F0F;&#x6765;&#x5339;&#x914D;&#x62A5;&#x6587;</p>
<p><strong>&#x7F16;&#x53F7;&#x8303;&#x56F4;&#x5728;: 6000---6999</strong></p>
<h2 id="acl&#x5339;&#x914D;&#x6A21;&#x5F0F;">ACL&#x5339;&#x914D;&#x6A21;&#x5F0F;</h2>
<p>&#x914D;&#x7F6E;&#x987A;&#x5E8F;(config&#x6A21;&#x5F0F;)</p>
<p>&#x9996;&#x6B21;&#x5339;&#x914D;&#x4E0A;&#x4E4B;&#x540E;, &#x540E;&#x7EED;&#x7684;&#x89C4;&#x5219;&#x5C31;&#x4E0D;&#x518D;&#x7EE7;&#x7EED;&#x68C0;&#x67E5;&#x4E86;</p>
<h2 id="&#x8C03;&#x7528;&#x65B9;&#x5F0F;">&#x8C03;&#x7528;&#x65B9;&#x5F0F;</h2>
<p>ACL&#x5B9A;&#x4E49;&#x7684;&#x4EC5;&#x4EC5;&#x662F;&#x4E00;&#x79CD;&#x89C4;&#x5219;, &#x4E00;&#x79CD;&#x5339;&#x914D;&#x62A5;&#x6587;&#x7684;&#x65B9;&#x6CD5;</p>
<p>&#x60F3;&#x8981;&#x4F7F;&#x7528;, &#x9700;&#x8981;&#x5728;&#x67D0;&#x4E9B;&#x670D;&#x52A1;&#x4E0A;&#x53BB;&#x5728;&#x5165;&#x53E3;&#x548C;&#x51FA;&#x53E3;&#x65B9;&#x5411;&#x4E0A;&#x53BB;&#x8FDB;&#x884C;&#x4F7F;&#x7528;&#x5BF9;&#x5E94;ACL</p>
<p>&#x6700;&#x5E38;&#x4F7F;&#x7528;&#x7684;&#x5C31;&#x662F;traffic-filter&#x65B9;&#x5F0F;</p>

                                
                                </section>
                            
    </div>
    <div class="search-results">
        <div class="has-results">
            
            <h1 class="search-results-title"><span class='search-results-count'></span> results matching "<span class='search-query'></span>"</h1>
            <ul class="search-results-list"></ul>
            
        </div>
        <div class="no-results">
            
            <h1 class="search-results-title">No results matching "<span class='search-query'></span>"</h1>
            
        </div>
    </div>
</div>

                        </div>
                    </div>
                
            </div>

            
                
                <a href="../router/BGP.html" class="navigation navigation-prev " aria-label="Previous page: BGP">
                    <i class="fa fa-angle-left"></i>
                </a>
                
                
                <a href="dhcp.html" class="navigation navigation-next " aria-label="Next page: DHCP">
                    <i class="fa fa-angle-right"></i>
                </a>
                
            
        
    </div>

    <script>
        var gitbook = gitbook || [];
        gitbook.push(function() {
            gitbook.page.hasChanged({"page":{"title":"ACL访问控制列表","level":"6.1","depth":1,"next":{"title":"DHCP","level":"6.2","depth":1,"path":"service/dhcp.md","ref":"./service/dhcp.md","articles":[]},"previous":{"title":"BGP","level":"5.5","depth":1,"path":"router/BGP.md","ref":"./router/BGP.md","articles":[]},"dir":"ltr"},"config":{"gitbook":"*","theme":"default","variables":{},"plugins":[],"pluginsConfig":{"highlight":{},"search":{},"lunr":{"maxIndexSize":1000000,"ignoreSpecialCharacters":false},"sharing":{"facebook":true,"twitter":true,"google":false,"weibo":false,"instapaper":false,"vk":false,"all":["facebook","google","twitter","weibo","instapaper"]},"fontsettings":{"theme":"white","family":"sans","size":2},"theme-default":{"styles":{"website":"styles/website.css","pdf":"styles/pdf.css","epub":"styles/epub.css","mobi":"styles/mobi.css","ebook":"styles/ebook.css","print":"styles/print.css"},"showLevel":false}},"structure":{"langs":"LANGS.md","readme":"README.md","glossary":"GLOSSARY.md","summary":"SUMMARY.md"},"pdf":{"pageNumbers":true,"fontSize":12,"fontFamily":"Arial","paperSize":"a4","chapterMark":"pagebreak","pageBreaksBefore":"/","margin":{"right":62,"left":62,"top":56,"bottom":56}},"styles":{"website":"styles/website.css","pdf":"styles/pdf.css","epub":"styles/epub.css","mobi":"styles/mobi.css","ebook":"styles/ebook.css","print":"styles/print.css"}},"file":{"path":"service/ACL.md","mtime":"2023-07-25T09:55:01.135Z","type":"markdown"},"gitbook":{"version":"3.2.3","time":"2023-08-05T12:56:30.066Z"},"basePath":"..","book":{"language":""}});
        });
    </script>
</div>

        
    <script src="../gitbook/gitbook.js"></script>
    <script src="../gitbook/theme.js"></script>
    
        
        <script src="../gitbook/gitbook-plugin-search/search-engine.js"></script>
        
    
        
        <script src="../gitbook/gitbook-plugin-search/search.js"></script>
        
    
        
        <script src="../gitbook/gitbook-plugin-lunr/lunr.min.js"></script>
        
    
        
        <script src="../gitbook/gitbook-plugin-lunr/search-lunr.js"></script>
        
    
        
        <script src="../gitbook/gitbook-plugin-sharing/buttons.js"></script>
        
    
        
        <script src="../gitbook/gitbook-plugin-fontsettings/fontsettings.js"></script>
        
    

    </body>
</html>

